$ rpki-client -vvf rpki.apnic.net/member_repository/A91CACCA/6086D7821DA911E2BB1B4EA408B02CD2/qZ9mmGknIBFUlstFlwLEOtxI1q0.mft File: qZ9mmGknIBFUlstFlwLEOtxI1q0.mft (raw, json) Hash identifier: YN1ZRane457AGv31ugGUmh+bc1lb7t60BfQbVbHB+sI= Subject key identifier: F7:5F:47:C3:7F:E6:AA:0A:29:4C:36:E8:13:A6:9D:4D:CE:5C:D4:99 Authority key identifier: A9:9F:66:98:69:27:20:11:54:96:CB:45:97:02:C4:3A:DC:48:D6:AD Certificate issuer: /CN=A91CACCA/serialNumber=A99F6698692720115496CB459702C43ADC48D6AD Certificate serial: 3522 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qZ9mmGknIBFUlstFlwLEOtxI1q0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CACCA/6086D7821DA911E2BB1B4EA408B02CD2/qZ9mmGknIBFUlstFlwLEOtxI1q0.mft Manifest number: 3522 Signing time: Thu 26 Mar 2026 15:16:16 +0000 Manifest this update: Thu 26 Mar 2026 15:16:15 +0000 Manifest next update: Thu 02 Apr 2026 15:16:15 +0000 Files and hashes: 1: qZ9mmGknIBFUlstFlwLEOtxI1q0.crl (hash: UHQDroywKpz6pxBLPpSZupyVzqyH47SvHtPOYHC4IwM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CACCA/6086D7821DA911E2BB1B4EA408B02CD2/qZ9mmGknIBFUlstFlwLEOtxI1q0.crl rsync://rpki.apnic.net/member_repository/A91CACCA/6086D7821DA911E2BB1B4EA408B02CD2/qZ9mmGknIBFUlstFlwLEOtxI1q0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qZ9mmGknIBFUlstFlwLEOtxI1q0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 15:16:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13602 (0x3522) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CACCA, serialNumber=A99F6698692720115496CB459702C43ADC48D6AD Validity Not Before: Mar 26 15:16:15 2026 GMT Not After : Apr 2 15:16:15 2026 GMT Subject: CN=69c54dc0-1c1a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:79:12:99:ff:be:f4:bd:b9:6b:1e:43:03:7b: 25:03:a2:ea:55:ec:d9:74:36:a3:cd:00:40:1a:8e: 89:a3:87:6d:75:35:b9:ff:8e:9e:c2:d4:aa:3c:f0: 9f:5a:ee:3c:32:0a:cf:cf:45:a8:76:53:b9:60:00: 20:ca:d4:ae:a9:25:20:f0:7e:13:c7:35:c7:26:41: 9e:71:18:51:c7:26:6f:ad:d5:df:70:d8:0e:7f:02: 17:5c:f1:d3:65:07:1a:23:7b:e6:b5:fa:03:58:30: 0d:7d:68:4c:a4:d2:bc:7e:73:8b:38:0b:5a:b0:d3: 72:dc:3c:6b:c5:0a:4c:73:71:74:1c:6a:df:80:33: 29:ca:5b:70:b7:d7:98:25:74:81:cb:34:13:cb:0f: de:12:b1:1a:57:f4:f4:0a:98:e6:eb:ed:c9:12:74: 59:bd:2e:dd:69:90:a5:36:e9:ac:92:1c:6a:cd:fe: 36:06:cc:1e:13:f2:b0:0b:54:cd:0f:24:b3:9c:85: fa:a8:75:2b:9a:75:2f:d4:04:00:f4:90:fd:4c:75: 29:d8:e0:bd:18:0b:41:70:08:3b:55:3f:49:0f:82: 29:63:9d:37:50:4b:b4:66:fe:52:3e:17:55:46:f8: 5c:02:1f:a2:32:bf:5f:99:b3:55:6f:78:ff:ed:e3: 6b:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:5F:47:C3:7F:E6:AA:0A:29:4C:36:E8:13:A6:9D:4D:CE:5C:D4:99 X509v3 Authority Key Identifier: keyid:A9:9F:66:98:69:27:20:11:54:96:CB:45:97:02:C4:3A:DC:48:D6:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CACCA/6086D7821DA911E2BB1B4EA408B02CD2/qZ9mmGknIBFUlstFlwLEOtxI1q0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qZ9mmGknIBFUlstFlwLEOtxI1q0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CACCA/6086D7821DA911E2BB1B4EA408B02CD2/qZ9mmGknIBFUlstFlwLEOtxI1q0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0a:b0:d9:c2:ac:b9:2f:06:68:e0:f6:ea:4a:cf:75:a7:0f:56: 25:f9:05:4c:7a:66:f6:40:6f:b0:9c:64:bb:4d:cf:2e:67:fc: 82:c5:97:12:7c:3d:bf:49:c0:a4:64:95:0a:44:1f:03:fd:72: e7:d2:ec:74:40:f3:64:70:6e:ff:33:6e:75:71:9f:f2:be:63: dc:24:dd:70:c5:21:db:56:4c:92:81:26:e6:a9:93:ac:f6:61: 5f:22:e5:d9:9d:3c:03:26:22:37:11:b4:64:fe:51:ab:4e:ec: 13:76:ac:93:8b:5e:aa:e5:1b:c3:b3:37:96:bd:02:77:41:25: c1:a0:4a:2a:e0:13:40:df:10:9b:7b:0a:bf:e0:ea:dd:d6:0b: ed:93:2f:17:69:22:71:df:e2:59:4b:53:6e:26:ca:db:e7:23: 36:6f:63:6f:9a:eb:c6:a7:23:54:18:97:d1:19:8e:a6:f5:32: 24:c9:2b:1c:ae:f4:6f:ad:ec:33:5c:64:39:c8:f2:49:ad:fa: 62:77:d0:41:05:5f:7d:f6:44:78:ad:2f:06:6c:fc:84:68:10: 48:7b:ff:fc:d8:46:bd:22:0e:19:fc:a2:04:2c:13:d1:bd:d2: d7:d4:96:05:fc:91:a2:32:f7:de:2c:44:f3:ab:1f:ec:2d:13: 38:a2:9f:a8 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNSIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0FDQ0ExMTAvBgNVBAUTKEE5OUY2Njk4NjkyNzIwMTE1NDk2Q0I0NTk3MDJDNDNB REM0OEQ2QUQwHhcNMjYwMzI2MTUxNjE1WhcNMjYwNDAyMTUxNjE1WjAYMRYwFAYD VQQDEw02OWM1NGRjMC0xYzFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAznkSmf++9L25ax5DA3slA6LqVezZdDajzQBAGo6Jo4dtdTW5/46ewtSqPPCf Wu48MgrPz0WodlO5YAAgytSuqSUg8H4TxzXHJkGecRhRxyZvrdXfcNgOfwIXXPHT ZQcaI3vmtfoDWDANfWhMpNK8fnOLOAtasNNy3DxrxQpMc3F0HGrfgDMpyltwt9eY JXSByzQTyw/eErEaV/T0Cpjm6+3JEnRZvS7daZClNumskhxqzf42BsweE/KwC1TN DySznIX6qHUrmnUv1AQA9JD9THUp2OC9GAtBcAg7VT9JD4IpY503UEu0Zv5SPhdV RvhcAh+iMr9fmbNVb3j/7eNrBQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPdfR8N/ 5qoKKUw26BOmnU3OXNSZMB8GA1UdIwQYMBaAFKmfZphpJyARVJbLRZcCxDrcSNat MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQUNDQS82MDg2RDc4MjFE QTkxMUUyQkIxQjRFQTQwOEIwMkNEMi9xWjltbUdrbklCRlVsc3RGbHdMRU90eEkx cTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FaOW1tR2tuSUJGVWxzdEZsd0xFT3R4STFxMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QUNDQS82MDg2RDc4MjFEQTkxMUUyQkIxQjRFQTQwOEIwMkNEMi9xWjltbUdrbklC RlVsc3RGbHdMRU90eEkxcTAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEACrDZwqy5LwZo4PbqSs91pw9WJfkFTHpm9kBvsJxku03PLmf8gsWXEnw9v0nA pGSVCkQfA/1y59LsdEDzZHBu/zNudXGf8r5j3CTdcMUh21ZMkoEm5qmTrPZhXyLl 2Z08AyYiNxG0ZP5Rq07sE3ask4tequUbw7M3lr0Cd0ElwaBKKuATQN8Qm3sKv+Dq 3dYL7ZMvF2kicd/iWUtTbibK2+cjNm9jb5rrxqcjVBiX0RmOpvUyJMkrHK70b63s M1xkOcjySa36YnfQQQVfffZEeK0vBmz8hGgQSHv//NhGvSIOGfyiBCwT0b3S19SW BfyRojL33ixE86sf7C0TOKKfqA== -----END CERTIFICATE-----Generated at Sat Mar 28 12:16:19 2026 by rpki-client